this post was submitted on 25 Nov 2025
60 points (94.1% liked)

Proton

8193 readers
1 users here now

Empowering you to choose a better internet where privacy is the default. Protect yourself online with Proton Mail, Proton VPN, Proton Calendar, Proton Drive. Proton Pass and SimpleLogin.

Proton Mail is the world's largest secure email provider. Swiss, end-to-end encrypted, private, and free.

Proton VPN is the world’s only open-source, publicly audited, unlimited and free VPN. Swiss-based, no-ads, and no-logs.

Proton Calendar is the world's first end-to-end encrypted calendar that allows you to keep your life private.

Proton Drive is a free end-to-end encrypted cloud storage that allows you to securely backup and share your files. It's open source, publicly audited, and Swiss-based.

Proton Pass Proton Pass is a free and open-source password manager which brings a higher level of security with rigorous end-to-end encryption of all data (including usernames, URLs, notes, and more) and email alias support.

SimpleLogin lets you send and receive emails anonymously via easily-generated unique email aliases.

founded 2 years ago
MODERATORS
ProtonPrivacy@lemmy.world
alex_herrero@lemmy.world
Nelizea@lemmy.world
60
Proton Pass: Get more done with fast, secure access directly in the terminal. (infosec.pub)
submitted 3 weeks ago by Nelizea@lemmy.world to c/protonprivacy@lemmy.world
13 comments fedilink hide all child comments
 

from the team:

Hey everyone,

For all of those technical users who love scripting and automating tasks and need direct access to Proton Pass from the terminal, we’ve just released CLI support.

This is built as a fast, secure, and automation-friendly way to access and manage Proton Pass items directly from the terminal.

The feature is available in beta for paid Proton Visionary users, with broader general availability coming soon (Pass Plus, Family, Unlimited, Professional, B2B bundles).

It will:

  • Enable scripting, both for personal scripts and for user management in enterprise setups
  • Provide secure credential access directly in the terminal
  • Allow users to create, read, update, and delete vaults and items
  • Let users view, retrieve, create, update, and delete passwords, secure notes, credit cards, identities, WiFi entries, custom items, and stored SSH-key items
  • Support vault member management
  • Work in CI/CD, servers, containers, and headless environments via app-password authentication
  • Enable simple scripted workflows and task automation

Stay in the flow and stay secure with Proton Pass CLI.

Read more: https://proton.me/blog/proton-pass-cli

you are viewing a single comment's thread
view the rest of the comments
[–] fraksken 19 points 3 weeks ago (1 children)

Nothing as secure as piping a url to a script into bash. /s

[–] 9488fcea02a9@sh.itjust.works 5 points 3 weeks ago (1 children)

90% of the time, that's a valid concern, but you can always read the script first.

And also, if proton wanted to fuck you over, a malicious bash script isnt even a top 10 easy vector. Why trust them with encrypted email if you are suspicious of an install script?

[–] fraksken 2 points 3 weeks ago

90% of the time, that's a valid concern, but you can always read the script first.

It would be a best practice to read any script you want to run on your system. Although the installation instructions tell you to just pipe it into bash.

And also, if proton wanted to fuck you over, a malicious bash script isnt even a top 10 easy vector. Why trust them with encrypted email if you are suspicious of an install script?

My concern is not so much proton fucking you over. There are pleny of attack surfaces between you and the server you're downloading it from.

Installing software on your system usually lets you check a gpg signature or a hash if you're downloading a binary. This method provides no such thing.

A company concerned with security and encryption should know better.